This skill should be used when the user asks to "create a slash command", "add a command", "write a custom command", "define a command with arguments", "create a command that runs bash", "add a /command to my plugin", "use $ARGUMENTS in a command", "set up argument-hint", "create a workflow command", "interactive command", or needs guidance on slash command structure, YAML frontmatter fields, file references, bash execution, command organization, or command best practices. Use this skill whenever Claude Code slash commands are mentioned even without the word "command" -- e.g. "I want a shortcut that reviews PRs" or "automate my deploy workflow" should trigger this. Do NOT use this for hooks (use create-hook), skills (use create-skill), or agents (use create-sub-agent).
From agent-scaffoldersnpx claudepluginhub richfrem/agent-plugins-skills --plugin agent-scaffoldersThis skill is limited to using the following tools:
acceptance-criteria.mdassets/templates/README.md.jinjaassets/templates/SKILL.md.jinjaassets/templates/agent.md.jinjaassets/templates/command.md.jinjaassets/templates/execute.py.jinjaevals/evals.jsonevals/results.tsvfallback-tree.mdreferences/acceptance-criteria.mdreferences/advanced-workflows.mdreferences/examples/plugin-commands.mdreferences/examples/plugin-features-reference.mdreferences/examples/simple-commands.mdreferences/fallback-tree.mdreferences/frontmatter-reference.mdreferences/hitl-interaction-design.mdreferences/interactive-commands.mdreferences/pattern-decision-matrix.mdreferences/patterns/action-forcing-output-with-deadline-attribution.mdExecutes pre-written implementation plans: critically reviews, follows bite-sized steps exactly, runs verifications, tracks progress with checkpoints, uses git worktrees, stops on blockers.
Guides idea refinement into designs: explores context, asks questions one-by-one, proposes approaches, presents sections for approval, writes/review specs before coding.
Dispatches parallel agents to independently tackle 2+ tasks like separate test failures or subsystems without shared state or dependencies.
This skill requires Python 3.8+ and standard library only. No external packages needed.
To install this skill's dependencies:
pip-compile ./requirements.in
pip install -r ./requirements.txt
See ../../requirements.txt for the dependency lockfile (currently empty — standard library only).
Slash commands are reusable Markdown prompts that Claude executes when invoked with
/command-name. They provide consistency, efficiency, and shareability for common
workflows. Commands can be simple prompts or powerful multi-step workflows using dynamic
arguments, file references, bash execution, and integration with agents and skills.
Reference files for deep dives:
references/frontmatter-reference.md-- full list of all frontmatter fieldsreferences/interactive-commands.md-- AskUserQuestion, conditional logicreferences/advanced-workflows.md-- multi-step, multi-component patternsreferences/plugin-features-reference.md-- ${CLAUDE_PLUGIN_ROOT}, bash execution syntaxreferences/examples/simple-commands.md-- copy-ready simple command templatesreferences/examples/plugin-commands.md-- copy-ready plugin command templates
Commands are instructions FOR Claude, not messages TO the user.
When /command-name is invoked, the command body becomes Claude's instructions. Write
what Claude should DO, not what the user will see.
# CORRECT -- tells Claude what to do:
Review this code for security vulnerabilities:
- SQL injection
- XSS attacks
- Authentication bypass
Provide specific line numbers and severity ratings.
# WRONG -- addresses the user, not Claude:
This command will review your code for security issues.
You will receive a report with vulnerability details.
Extract from context first. Ask only what is unclear.
Core questions:
What workflow should this automate? One command, one purpose.
Which command type fits?
$ARGUMENTS, $1/$2 positional args, or file references (@$1)!`` `` `` bash commands to gather dynamic context before Claude runsWhere should it live?
.claude/skills/<name>/SKILL.md -- recommended for new work (supports supporting files,
cross-agent portability, inline hooks). The directory name becomes the slash command..claude/commands/<name>.md -- flat file, still works, simpler but no supporting files.
Note: confirmed macOS discovery bug (GitHub #13906) with .claude/commands/ in
some Claude Code versions. Prefer skills/ or a local plugin for reliability.~/.claude/skills/<name>/SKILL.md -- personal commands available in all projectsplugin-name/skills/<name>/SKILL.md -- distributed with plugin, namespaced as
/plugin-name:<name> -- always use the full namespaced form in agent filesDoes it need arguments? Use $ARGUMENTS (all as one string) or $1, $2 (positional).
Does it need to read files? Use @file-path or @$1 for dynamic file args.
Tool restrictions needed? Set allowed-tools to restrict scope (e.g. Bash(git:*) not Bash(*)).
---
description: Review code for security vulnerabilities
allowed-tools: Read, Grep
---
Review the current file for security vulnerabilities including:
- SQL injection risks
- XSS attack vectors
- Authentication bypass
- Insecure data handling
Provide specific line numbers and severity (critical/high/medium/low).
---
description: Fix GitHub issue by number
argument-hint: [issue-number]
---
Fix issue #$ARGUMENTS following our coding standards and writing tests for all changes.
---
description: Review PR with priority and assignee
argument-hint: [pr-number] [priority] [assignee]
---
Review pull request #$1 with $2 priority.
After review, assign to $3 for follow-up action.
---
description: Generate documentation for a source file
argument-hint: [source-file]
---
Generate comprehensive documentation for @$1 including:
- Function/class descriptions and parameter docs
- Return value descriptions with types
- Usage examples with edge cases
---
description: Review code changes
allowed-tools: Read, Bash(git:*)
---
Files changed: !`git diff --name-only HEAD~1`
Current branch: !`git branch --show-current`
Review each changed file for:
1. Code quality and style consistency
2. Potential bugs or regressions
3. Test coverage gaps
4. Documentation needs
Provide specific feedback per file.
---
description: Run plugin analyzer on target file
argument-hint: [file-path]
allowed-tools: Bash(node:*), Read
---
Run analysis: !`node ${CLAUDE_PLUGIN_ROOT}/scripts/analyze.js $1`
Load rules: @${CLAUDE_PLUGIN_ROOT}/config/rules.json
Review results and report findings by severity.
skills/ directory (recommended)# Project command (as skill directory)
mkdir -p .claude/skills/<name>
touch .claude/skills/<name>/SKILL.md
# optionally: mkdir -p .claude/skills/<name>/evals
# optionally: touch .claude/skills/<name>/acceptance-criteria.md
# Personal command
mkdir -p ~/.claude/skills/<name>
touch ~/.claude/skills/<name>/SKILL.md
# Plugin command (namespaced as /plugin-name:<name>)
mkdir -p plugin-name/skills/<name>
touch plugin-name/skills/<name>/SKILL.md
.md file (still supported)mkdir -p .claude/commands
touch .claude/commands/<name>.md
Use for one-liner prompts with no supporting files. For anything more complex, prefer
the skills/ directory so you can add references/, evals/, and inline hooks later.
| Field | Purpose | Default | Example |
|---|---|---|---|
name | Required. Slash command name. Kebab-case. | — | name: deploy |
description | Text in /help. Hard limit 1024 chars. Keep under 150 words. | — | description: Deploy to target env. |
argument-hint | Autocomplete hint for arguments | — | argument-hint: "[env: dev|staging|prod]" |
allowed-tools | Restrict tool access (least privilege) | All | allowed-tools: Read(*), Bash(git *) |
disable-model-invocation | true = user-only, blocks auto-invoke | false | disable-model-invocation: true |
user-invocable | false = background knowledge, not user-typed | true | user-invocable: false |
model | Override model for this command | session default | model: claude-haiku-4-5-20251001 |
effort | Override effort level | medium | effort: low |
maxTokens | Cap token budget for this command | model default | maxTokens: 4096 |
hooks | Inline hooks scoped to this skill's lifetime | — | see create-hook |
isolation | Run in isolated git worktree | none | isolation: worktree |
No frontmatter is needed for the simplest commands -- omit the --- block entirely.
$ARGUMENTS -- all user-supplied text as one string (use for simple single-arg commands)$1, $2, $3 -- positional (use when multiple distinct args needed)$1 for first, $ARGUMENTS for "everything after"argument-hint and handle the missing-arg case in the prompt!`command` -- executes, output injected before Claude processes
!`git diff HEAD~1` -- inject git diff
!`cat package.json` -- inject file contents (alternative to @syntax)
Use allowed-tools: Bash(git:*) to scope permissions. See references/plugin-features-reference.md
for full bash execution details and edge cases.
@path/to/file.md -- static file reference, Claude reads before processing
@$1 -- dynamic file reference using first argument
@${CLAUDE_PLUGIN_ROOT}/templates/report.md -- plugin-relative file
---
argument-hint: [environment]
---
Validate: !`echo "$1" | grep -E "^(dev|staging|prod)$" && echo "valid" || echo "invalid"`
If $1 is a valid environment (dev/staging/prod):
Deploy to $1 environment
Otherwise:
Explain valid environments and show usage: /deploy [dev|staging|prod]
---
description: Comprehensive review workflow
argument-hint: [file]
allowed-tools: Bash(node:*), Read
---
Target: @$1
Phase 1 - Static analysis:
!`node ${CLAUDE_PLUGIN_ROOT}/scripts/lint.js $1`
Phase 2 - Deep review:
Launch the code-reviewer agent for detailed analysis.
Phase 3 - Standards check:
Use the coding-standards skill for validation.
Phase 4 - Report:
Template: @${CLAUDE_PLUGIN_ROOT}/templates/review.md
Compile findings following the template structure.
review-pr, fix-issue, deploy-stagingtest, run, build (conflict-prone)commands/
├── ci/
│ ├── build.md # /build (project:ci)
│ ├── test.md # /test (project:ci)
│ └── lint.md
├── git/
│ ├── commit.md
│ └── review-pr.md
└── docs/
└── generate.md
Use subdirectories when you have 15+ commands or clear logical categories.
<!--
Usage: /deploy [staging|production] [version]
Requires: AWS credentials configured
Example: /deploy staging v1.2.3
-->
Deploy application to $1 environment using version $2...
Checklist:
name field present (required — without it the command silently fails to register)description clear, under 150 words, hard limit 1024 charsargument-hint documents all argumentsallowed-tools restricts to only what's needed$ARGUMENTS used for single-arg commands; $1/$2 for multiple distinct args@file references use valid pathsBash(git *) not Bash(*) where possible${CLAUDE_PLUGIN_ROOT} not hardcoded paths/plugin-name:commandskills/ directory (preferred) or commands/ (flat, simple only)Test the command:
/command-name arg1 arg2
If the command isn't showing up, work through this in order:
[ ] 1. YAML syntax: open SKILL.md, check frontmatter manually.
`---` markers must be on their own lines, no leading spaces.
[ ] 2. name field: must be present.
[ ] 3. Plugin namespace: if installed as plugin, use /plugin-name:command not /command.
[ ] 4. Scope: is it in ~/.claude/skills/ (always) or .claude/skills/ (this project only)?
[ ] 5. Budget: run /context -- are skills excluded? Fix: SLASH_COMMAND_TOOL_CHAR_BUDGET=200000
[ ] 6. Platform: macOS + .claude/commands/ has a known bug (#13906). Migrate to skills/.
[ ] 7. Reload: run /reload-plugins after editing.
[ ] 8. Health: run /doctor for failures.
[ ] 9. Verify: run /help -- does the command appear with correct namespace?
Run audit:
audit-plugin -- validates full plugin structure including commands
continuous-skill-optimizer to benchmark trigger optimizationAskUserQuestion -- see references/interactive-commands.mdreferences/examples/plugin-commands.mdaudit-plugin to validate structure